15a0888100dfeaaa896aa18d94e9349f8d242359c1b389ef2fc641dffd58e4ac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

79e3c73ad821699c76b5e6dbf8ca8a31
Size

1.1MB
Sample

240127-lj277sbben
MD5

79e3c73ad821699c76b5e6dbf8ca8a31
SHA1

595177937909f92703ccb6e4f82fc745a379d2f4
SHA256

15a0888100dfeaaa896aa18d94e9349f8d242359c1b389ef2fc641dffd58e4ac
SHA512

2005a921b421a40bdccfd5e9a97ec97b105fff730027fef41f3ab1b0a632b49a821322e434bd7a14df350510ff9602d05e408a54443ee51bb2b85857ee3d1b67
SSDEEP

24576:8V0gSvAxPe7YDIVNCjwM3hGTv8vZGvhsflKaFg3+B:8V4AxGEkMwMdZG5u1g3+B

Score

7^/10

Malware Config

Targets

- Target
  
  79e3c73ad821699c76b5e6dbf8ca8a31
- Size
  
  1.1MB
- MD5
  
  79e3c73ad821699c76b5e6dbf8ca8a31
- SHA1
  
  595177937909f92703ccb6e4f82fc745a379d2f4
- SHA256
  
  15a0888100dfeaaa896aa18d94e9349f8d242359c1b389ef2fc641dffd58e4ac
- SHA512
  
  2005a921b421a40bdccfd5e9a97ec97b105fff730027fef41f3ab1b0a632b49a821322e434bd7a14df350510ff9602d05e408a54443ee51bb2b85857ee3d1b67
- SSDEEP
  
  24576:8V0gSvAxPe7YDIVNCjwM3hGTv8vZGvhsflKaFg3+B:8V4AxGEkMwMdZG5u1g3+B
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2